Vulnerabilities > Cleartext Transmission of Sensitive Information

DATE CVE VULNERABILITY TITLE RISK
2024-09-13 CVE-2024-43180 Cleartext Transmission of Sensitive Information vulnerability in IBM Concert 1.0
IBM Concert 1.0 does not set the secure attribute on authorization tokens or session cookies.
network
low complexity
ibm CWE-319
4.3
2024-09-10 CVE-2024-44105 Cleartext Transmission of Sensitive Information vulnerability in Ivanti Workspace Control
Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to obtain OS credentials.
local
low complexity
ivanti CWE-319
7.8
2024-09-04 CVE-2024-41927 Cleartext Transmission of Sensitive Information vulnerability in Idec products
Cleartext transmission of sensitive information vulnerability exists in multiple IDEC PLCs.
low complexity
idec CWE-319
4.6
2024-08-15 CVE-2024-31799 Cleartext Transmission of Sensitive Information vulnerability in Gncchome Gncc C2 Firmware
Information Disclosure in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to read the WiFi passphrase via the UART Debugging Port.
low complexity
gncchome CWE-319
4.6
2024-08-12 CVE-2024-7408 Cleartext Transmission of Sensitive Information vulnerability in Airveda Pm2.5 Pm10 Monitor Firmware
This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode.
low complexity
airveda CWE-319
6.5
2024-08-02 CVE-2024-38891 Cleartext Transmission of Sensitive Information vulnerability in Horizoncloud Caterease
An issue in Horizon Business Services Inc.
network
low complexity
horizoncloud CWE-319
7.5
2024-08-01 CVE-2024-32864 Cleartext Transmission of Sensitive Information vulnerability in Johnsoncontrols Exacqvision web Service 20.06.11.0/20.06.3.0/21.03
Under certain circumstances exacqVision Web Services will not enforce secure web communications (HTTPS)
network
low complexity
johnsoncontrols CWE-319
8.1
2024-07-26 CVE-2024-41687 Cleartext Transmission of Sensitive Information vulnerability in Syrotech Sy-Gpon-1110-Wdont Firmware 3.1.02231102
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to transmission of password in plain text.
network
low complexity
syrotech CWE-319
7.5
2024-06-10 CVE-2024-37393 Cleartext Transmission of Sensitive Information vulnerability in Securenvoy Multi-Factor Authentication Solutions
Multiple LDAP injections vulnerabilities exist in SecurEnvoy MFA before 9.4.514 due to improper validation of user-supplied input.
network
low complexity
securenvoy CWE-319
7.5
2024-06-07 CVE-2024-37163 Cleartext Transmission of Sensitive Information vulnerability in Opensourcelabs Skyscraper 1.0.0
SkyScrape is a GUI Dashboard for AWS Infrastructure and Managing Resources and Usage Costs.
network
low complexity
opensourcelabs CWE-319
7.5